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Amendments to the Claims: 

This listing of claims will replace all prior versions and listings of claims in the 
application: 

Listing of Claims: 

1. (Currently Amended) A method for providing an external client with 
selective access to a computer device protected behind a firewall and a host, 
comprising: 

providing a tunnel mechanism between the host and the computer device, 
wherein the tunnel mechanism is in communication with the host and the computer 
device; 

receiving with the tunnel mechanism an access request to the computer 
device from the external client, the access request passing through a port in the 
firewall prior to the receiving with the tunnel mechanism; 

verifying the external client currently has authorized access to the host; 

after successful completion of the verifying, routing the access request to the 
computer device with the tunnel mechanism; and 

receiving a response to the access request from the computer device and 
modifying the response prior to transmitting the response to the external client to 
rcmovo replace [[all]] identification information for the computer device, with 
information for the tunnel mechanism whereby access to the computer device to 
obtain the response is hidden from the external client. 

2. (original) The method of claim 1 , further including prior to the routing, 
determining a destination interface from the access request and wherein the routing 
includes modifying the access request to include an address for the destination 
interface, 
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3. (original) The method of claim 2, wherein the providing includes 
establishing a communicative fink between the tunnel mechanism and the 
destination interface. 

4. (canceled) 

5. (previously presented) The method of claim 1 , wherein the modifying 
includes adding identification information for the tunnel mechanism to the response. 

6. (original) The method of claim 5, wherein the response includes URL 
information and the added identification information includes URL information for 
the tunnel mechanism. 

7. (previously presented) The method of claim 1, further including 
examining the response for an error message, translating the error message, and 
including the error message in the response transmitted to the external client. 

8. (previously presented) The method of claim 1, further including 
examining the response for an error message, translating the error message, and 
operating the tunnel mechanism to take corrective actions to remove the error 
message from the response from the computer device. 

9. (original) The method of claim 1, wherein the verifying includes 
determining a level of the authorized access and, further wherein the routing 
includes limiting the access request to the computer device to the determined level 
of the authorized access. 

10. (Currently Amended) A method for controlling access to a device on 
an internal network by a client device on an external data communications network, 
a firewall being installed between the internal network and the external data 
communications network, the method comprising: 
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receiving with a tunnel mechanism an access request from the external client 
device to the internal network device, the tunnel mechanism being communicatively 
linked to the firewall and an interface of the internal device; 

modifying the access request to include an address of the interface of the 
internal device; 

operating the tunnel mechanism to route the modified access request to the 
interface of the internal device; 

receiving a response to the modified access request from the internal device 
at the tunnel mechanism, the response including identification information for the 
internal device; and 

modifying the response with the tunnel mechanism to r e mov e replace a H-ef 
the identification information for the internal device with identification information for 
the tunnel mechanism p rior to transmittal of the modified response to the external 
client device; 

wherein the identification information includes URL information for the 
internal device and the response modifying includes replacing the internal device 
URL information with URL information for the tunnel mechanism, whereby the 
internal device is hidden from the external client device with the response 
appearing to originate from the tunnel mechanism. 

11. (original) The method of claim 10, wherein the access request 
includes URL information and the access request modifying includes modifying the 
URL information to include URL information for the internal device. 

12. (canceled) 

13. (original) The method of claim 10, wherein the internal network 
includes a plurality of the internal devices, and the access request modifying 
includes determining a destination interface for a one of the internal devices 
corresponding to the access request from the external device. 
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14. (original) The method of claim 10 t further including prior to the 
routing, verifying the external device is currently authenticated as an authorized 
user of a host device communicatively linked to the firewall and the tunnel 
mechanism. 

15. (canceled) 

16. (Currently Amended) A network access system for controlling access 
to a computer device protected by a firewall, comprising: 

a host server on an interior side of the firewall, the host server being linked to 
the firewall and configured for receiving a request from a client device located 
exterior to the firewall; and 

a tunnel mechanism linked to the computer device adapted for: modifying 
the request to include an address of an interface of the computer device; routing 
the modified request to the computer device; receiving a response from the 
computer device including identification information; and modifying the response to 
remove-replace all of th e-identification information for the computer device with 
identification information for the tunnel mechanism , whereby a source of the 
response is hidden from the external client. 

17. (canceled) 

18. (original) The system of claim 16, wherein the tunnel mechanism is 
further adapted for verifying, prior to the routing of the modified request, that the 
client device was authorized to access the host server when the request was 
received. 

19. (previously presented) A computer readable . medium for providing a 
device on an exterior side of a firewall selective access to a device on the interior 
side of the firewall, a host being positioned between the firewall and the interior 
device, comprising: 
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computer readable program code devices configured to cause a computer to 
receive a request from the exterior device to access the interior device; 

computer readable program code devices configured to cause a computer to 
verify the exterior device is presently authorized to access the host; 

computer readable program code devices configured to cause a computer to 
route the request to an interface of the interior device based on the verified 
authorization; and 

computer readable program code devices configured to cause a computer to 
translate error messages in the received response, to take response actions to the 
error messages, and to include unresolved ones of the translated error messages 
in the modified response without identification information for the interior device. 

20. (previously presented) The computer readable medium of claim 19, 
wherein the routing includes determining the interface for routing the request and 
the routing of the request includes modifying the request to include an address for 
the determined interface. 

21. (previously presented) The computer readable medium of claim 19, 
further including computer readable program code devices configured to cause a 
computer to receive a response from the interior device comprising identification 
information corresponding to the interior device and computer readable program 
code devices configured for causing a computer to generate a modified response 
based on the received response including removing the identification information. 

Claims 22-24 (canceled) 
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